CVE-2017-17051

Опубликовано: 05 дек. 2017

Источник: ubuntu

Приоритет: medium

CVSS2: 4

CVSS3: 8.6

Описание

An issue was discovered in the default FilterScheduler in OpenStack Nova 16.0.3. By repeatedly rebuilding an instance with new images, an authenticated user may consume untracked resources on a hypervisor host leading to a denial of service, aka doubled resource allocations. This regression was introduced with the fix for OSSA-2017-005 (CVE-2017-16239); however, only Nova stable/pike or later deployments with that fix applied and relying on the default FilterScheduler are affected.

Релиз	Статус	Примечание
artful	released	2:16.1.2-0ubuntu1
bionic	not-affected	2:17.0.0~rc2-0ubuntu1
devel	not-affected	2:17.0.0~rc2-0ubuntu1
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [code not present]]
esm-infra/bionic	not-affected	2:17.0.0~rc2-0ubuntu1
esm-infra/xenial	not-affected	code not present
precise/esm	DNE
trusty	not-affected	code not present
trusty/esm	DNE	trusty was not-affected [code not present]
upstream	needs-triage

Показывать по

Ссылки на источники

4 Medium

CVSS2

8.6 High

CVSS3

Связанные уязвимости

CVE-2017-17051

CVSS3: 5.3

redhat

около 8 лет назад

CVE-2017-17051

CVSS3: 8.6

nvd

около 8 лет назад

CVE-2017-17051

CVSS3: 8.6

debian

около 8 лет назад

An issue was discovered in the default FilterScheduler in OpenStack No ...

GHSA-vq76-rxx3-4r4r

CVSS3: 8.6

github

больше 3 лет назад

OpenStack Nova DoS by rebuilding the same instance with a new image multiple times

4 Medium

CVSS2

8.6 High

CVSS3

CVE-2017-17051

Описание

Пакет nova

Ссылки на источники

Связанные уязвимости